AMENDMENT TO THE CLAIMS 

1. ( Currently Amended) A computer- implemented method for 
enhancing the security of informational interactions with a 
biometric device, comprising: 

pre-establishing an encryption relationship 

between a computing device and the biometric 
device , wherein the computing device and 
biometric device include separate but 
related encryption components and the 
biometric device encryption component is 
implemented as firmware and decrypts 
information encrypted by the computing 
device encryption component ; 
generating a session packet, wherein generating a 
session packet comprises generating a 
session number and storing it in the session 
packet ; 

maintaining a record of the session number; 

encrypting the session packet utilizing the 

computing device encryption component and 
transmitting it to the biometric device; and 

receiving a biometric information packet from the 
biometric device , decrypting it, and making 
a determination as to whether or not to 
utilize a collection of biometric data 
contained in the decrypted biometric 
information packet, wherein making a 
determination comprises comparing a session 
number received with or as part of the 
biometric information packet to the record 
of the session number—; and 



wherein pre-establishing, generating, 

maintaining, encrypting, and receiving 
enhance the security of informational 
interactions between the biometric device 
that collects the collection of biometric 
data and the computing device that 
selectively utilizes the collection of 
biometric data. 

2. (Previously Presented) The method of claim 1, wherein the 
method is performed in the consecutive order of pre- 
establishing, generating, maintaining, encrypting, and 
receiving. 

3. (Previously Presented) The method of claim 1, further 
comprising storing the session number in a database 
associated with the computing device. 

4. (Previously Presented) The method of claim 1, wherein 
generating a session packet further comprises obtaining a 
session key and storing it in the session packet. 

5. (Original) The method of claim 4, further comprising 
storing the session key in a database associated with the 
computer. 

6. (Original) The method of claim 4, wherein receiving a 
biometric information packet and decrypting it comprises 
receiving a biometric information packet and decrypting it 
with an encryption key that is complimentarily related to the 
session key. 



7. (Original) The method of claim 4, wherein obtaining a 
session key comprises generating a public key portion of a 
PKI key pair. 

8. (Original) The method of claim 7, wherein receiving a 
biometric information packet and decrypting it comprises 
receiving a biometric information packet and decrypting it 
with a private key portion of the PKI key pair. 

9. (Original) The method of claim 1, wherein receiving a 
biometric information packet and decrypting it comprises 
receiving a biometric information packet and decrypting it 
with an encryption component that is independent of the pre- 
established encryption relationship. 

10. (Previously Presented) The method of claim 1, wherein 
generating a session packet further comprises generating a 
session time stamp and storing it in the session packet. 

11. (Cancelled) 

12. (Previously Presented) The method of claim 4, further 
comprising storing the session number, the session key and a 
session time stamp in a database associated with the 
computer. 

13. (Cancelled) 

14. (Previously Presented) The method of claim 1, wherein 
making a determination further comprises evaluating a session 



time stamp to determine whether the biometric information 
packet was received within a predetermined time period. 

15. (Previously Presented) The method of claim 1, wherein 
making a determination further comprises comparing a data 
representation of a user's biometric information to at least 
one data representation of biometric information stored in a 
database . 

16. (Previously Presented) The method of claim 1, wherein 
making a determination further comprises: 

evaluating a session time stamp to determine 

whether the biometric information packet was 
received within a predetermined time 
period; and 

comparing a database representation of a user's 
biometric information to at least one data 
representation of biometric information 
stored in a database. 

17. (Cancelled) 

18. (Cancelled) 

19. (Original) The method of claim 1, wherein pre- 
establishing an encryption relationship comprises storing a 
first part of a PKI key pair with the computing device and a 
second part of the PKI key pair with the biometric device. 

20. ( Currently Amended) The method of claim 19, wherein 
encrypting the session packet comprises encrypting the 



session packet utilizing one of the first and second parte of 
the PKI key pair. 

21. (Original) The method of claim 1, wherein pre- 
establishing an encryption relationship comprises storing a 
first part of a static encryption key pair with the computing 
and a second part of the static encryption key pair with the 
biometric device, one of the first and second parts being 
configured to decrypt information that has previously been 
encrypted utilizing the other part. 

22. (Currently Amended) The method of claim 21, wherein 
encrypting the session packet comprises encrypting the 
session packet utilizing one of the first and occond parte of 
the static encryption key pair. 



23. 


(Cancelled) 


24 . 


(Cancelled) 


25. 


(Cancelled) 


26. 


(Cancelled) 


27. 


(Cancelled) 


28. 


(Cancelled) 


29. 


(Cancelled) 


30. 


(Cancelled) 


31. 


(Cancelled) 


32. 


(Cancelled) 


33. 


(Cancelled) 


34. 


(Cancelled) 



35. (Currently Amended) A computer readable medium having 
instructions stored thereon which, when executed by a 



computing device, cause the computing device to perform a 
series of steps comprising: 

first, receiving a session initiation command; 
second, generating a session packet, wherein generating 
a session packet comprises obtaining a session key 
and storing it in the session packet; 
third, encrypting the session packet; 

fourth, transmitting the encrypted session packet to a 
biometric device; 

fifth, receiving a biometric information packet from the 
biometric device; 

sixth, decrypting the biometric information packet, 

wherein decrypting the biometric information packet 
comprises decrypting it with an encryption key that 
is complimentarily related to the session key; and 

seventh, determining, based on a content of a collection 
of authentication information contained in the 
decrypted biometric information packet, whether or 
not to utilize a collection of biometric data 
contained in the decrypted biometric information 
packet —; and 

wherein first, second, third, fourth, fifth, sixth, and 
seventh respectively correspond to the consecutive 
order of the series of steps. 

36. (Previously Presented) The computer readable medium of 
claim 35, wherein generating a session packet further 
comprises generating a session number and storing it in the 
session packet. 



37. (Original) The computer readable medium of claim 36, 
further comprising the step of storing the session number in 
a database associated with the computing device. 

38. . (Cancelled) 

39. (Previously Presented) The computer readable medium of 
claim 35 , further comprising the step of storing the session 
key in a database associated with the computer. 

40. (Cancelled) 

41. (Previously Presented) The computer readable medium of 
claim 35, wherein obtaining a session key comprises 
generating a public key portion of a PKI key pair. 

42. (Previously Presented) The computer readable medium of 
claim 41, wherein decrypting the biometric information packet 
with, an encryption key that is complimentarily related to the 
session key comprises decrypting the biometric information 
packet with a private key portion of the PKI key pair. 

43. (Previously Presented) The computer readable medium of 
claim 35, wherein generating a session packet further 
comprises generating a session time stamp and storing it in 
the session packet. 

44. (Original) The computer readable medium of claim 35, 
wherein determining comprises comparing a session number to a 
list of valid values. 



45. (Original) The computer readable medium of claim 35, 
wherein determining comprises evaluating a session time stamp 
to determine whether the biometric information packet was 
received within a predetermined time period. 

46. (Original) The computer readable medium of claim 35, 
wherein encrypting the session packet comprises encryption 
the session packet with a first encryption component that is 
complimentarily related to a second encryption component 
maintained on the biometric device, one of the first and 
second encryption components being configured to decrypt 
information that has previously been encrypted utilizing the 
other of the first and second encryption components. 

47. (Original) The computer readable medium of claim 46, 
wherein the first and second encryption components are a PKI 
key pair. 

48. (Original) The computer readable medium of claim 46, 
wherein the first and second encryption components are a 
static encryption key pair. 

49. (Currently Amended) A computer- implemented method for 
enhancing the security of informational interactions with a 
biometric device, comprising: 

first, pre-establishing an encryption relationship 
between a computing device and the biometric 
device , wherein pre-establishing an encryption 
relationship comprises storing a first encryption 
component with the computing device and a second 
encryption component with the biometric device, 
one of the first and second encryption components 



being configured to decrypt information that has 
previously been encrypted utilizing the other of 
the first and second encryption components ; 

second, generating a session packet, wherein 

generating a session packet comprises generating 
a session encryption key time otamp and storing 
it in the session packet; 

third, encrypting the session packet utilizing the 
computing device encryption component and 
transmitting it the encrypted session packet that 
includes the session encryption key to the 
biometric device; a**d 

fourth, receiving from the biometric device a 

biometric information packet that is encrypted 
utilizing the session encryption key , decrypting 
irtr the biometric information packet with an 
encryption key that is complimentarily related to 
the session encryption key , and making a 
determination as to whether or not to utilize a 
collection of biometric data contained in the 
decrypted biometric information packet based on a 
content of a collection of authentication 
information contained in the decrypted biometric 
information packet- ? — wherein making a 
determination compriacD evaluating the ocooion 
time otamp to determine whether the biometric 
information packet wao received within a 
predetermined period of timc> ; and 

wherein first, second, third, and fourth respectively 
correspond to the consecutive order of the 
computer implemented method. 



50. (New) The method of claim 49, wherein generating a 
session encryption key comprises generating a public key 
portion of a PKI key pair. 

51. (New) The method of claim 50, wherein receiving a 
biometric information packet and decrypting it comprises 
receiving a biometric information packet and decrypting it 
with a private key portion of the PKI key pair. 



